CVE-2026-53240
- EPSS 0.42%
- Veröffentlicht 25.06.2026 08:39:35
- Zuletzt bearbeitet 08.07.2026 13:05:31
In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix use-after-free on first_skb in __input_process_payload __input_process_payload() stores first_skb into xtfs->ra_newskb under drop_lock when starting partial reasse...
CVE-2026-53238
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:34
- Zuletzt bearbeitet 08.07.2026 13:12:15
In the Linux kernel, the following vulnerability has been resolved: netlabel: validate unlabeled address and mask attribute lengths netlbl_unlabel_addrinfo_get() used the address attribute length to determine whether the attribute data could be rea...
CVE-2026-53236
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:33
- Zuletzt bearbeitet 08.07.2026 13:20:37
In the Linux kernel, the following vulnerability has been resolved: tcp: restrict SO_ATTACH_FILTER to priv users This patch restricts the use of SO_ATTACH_FILTER (cBPF) on TCP sockets to users with CAP_NET_ADMIN capability. This blocks potential s...
CVE-2026-53237
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:33
- Zuletzt bearbeitet 08.07.2026 13:13:22
In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix NULL pointer dereference in suspend/resume mvebu_pwm_suspend() and mvebu_pwm_resume() are called for all GPIO banks during suspend/resume, but not all banks have P...
CVE-2026-53235
- EPSS 0.47%
- Veröffentlicht 25.06.2026 08:39:32
- Zuletzt bearbeitet 08.07.2026 19:00:57
In the Linux kernel, the following vulnerability has been resolved: net: add pskb_may_pull() to skb_gro_receive_list() skb_gro_receive_list() calls skb_pull(skb, skb_gro_offset(skb)) without first ensuring the data is in the linear area via pskb_ma...
CVE-2026-53233
- EPSS 0.14%
- Veröffentlicht 25.06.2026 08:39:31
- Zuletzt bearbeitet 07.07.2026 23:46:31
In the Linux kernel, the following vulnerability has been resolved: netdev: fix double-free in netdev_nl_bind_rx_doit() Sashiko flags that genlmsg_reply() always consumes the skb. The error path calls nlmsg_free(rsp) so we can't jump directly to it...
CVE-2026-53234
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:31
- Zuletzt bearbeitet 08.07.2026 19:02:06
In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during device removal The driver was using devm_register_netdev() which causes unregister_netdev() to be deferred until the devres cleanup phase,...
CVE-2026-53232
- EPSS 0.22%
- Veröffentlicht 25.06.2026 08:39:30
- Zuletzt bearbeitet 16.07.2026 12:18:07
In the Linux kernel, the following vulnerability has been resolved: net: phy: clean the sfp upstream if phy probing fails Sashiko reported that we don't call sfp_bus_del_upstream() in the probe failure path, so let's add it, otherwise the sfp-bus i...
CVE-2026-53230
- EPSS 0.13%
- Veröffentlicht 25.06.2026 08:39:29
- Zuletzt bearbeitet 02.07.2026 20:44:28
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list mlx5_query_nic_vport_mac_list() sizes its firmware command buffer using the PF's log_max_current_uc/mc_list capabi...
CVE-2026-53231
- EPSS 0.09%
- Veröffentlicht 25.06.2026 08:39:29
- Zuletzt bearbeitet 02.07.2026 20:44:05
In the Linux kernel, the following vulnerability has been resolved: net: phy: don't try to setup PHY-driven SFP cages when using genphy We don't have support for PHY-driver SFP cages with the genphy code. On top of that, it was found by sashiko th...